XML firewalls protect deeply » Computer internet security  
Computer and internet security news
computer and networking security portal
 
|
|
|
News
|
Advertise
|
|
Products
|
Contact

XML firewalls protect deeply



Wednesday, November 5, 2008, 23:43
This news item was posted in xml security category and has 0 Comments so far.

XML firewalls generally protect Web services while residing in the DMZ between the hostile Internet and protected services. It is from this location they provide security policy enforcement for Web services and XML messages. To enforce security policy, the XML firewall validates message source, reads and modifies message headers, inspects the message content and validates message elements/attributes to enforce fine-grained security policies. Just as traditional firewalls protect the private IP addresses and ports from hackers, the XML firewall protects the Web service listener, XML parser and Web service application from a variety of attacks.

One such attack that traditional firewalls offer no protection against is an XML message-based denial-of-service attack. The attack involves sending extremely large messages or overflowing values of message fields. A malicious user can exhaust XML parser resources and thereby create a denial-of-service condition. It is also possible to launch SQL injection attacks against Web services by inserting SQL commands into the XML messages.

The XML firewall counters these threats by intercepting the XML messages and inspecting them before they get forwarded to the Web service applications. This is done with a high performance parsing engine that applies a message security policy, as well as heuristics that learn the characteristics of messages common to the Web service application. For example, if a Web service application receives messages no greater than 100 KB in size for a period of time and suddenly a 900 KB message is received, the XML firewall can take a variety of admin-prescribed actions, including dropping the message and alerting the admin.

Related posts:

  1. Security risk in xml - common questions
  2. Policies of firewall
  3. Iintrusion detection systems with intelligent firewalls and routers (Darpa)
  4. Personal firewalls
  5. Vordel XML Firewall protects XML applications
  6. Port Scanning behind firewalls

Related posts brought to you by Yet Another Related Posts Plugin.





Tagged with: , ,

You can leave a response, or trackback from your own site.

Leave a Reply

The common threats to your pc
Vordel XML Firewall protects XML applications




:::: Recent entries


 
Join My Community at MyBloglog!



My BlogCatalog BlogRank

Computers Blogs - Blog Top Sites